We all the know the MO of threat actors who distribute malware. Deliver a nasty payload, wait for the victim to click and lock up their files, demand payment and wait for the bitcoin to flow. But some bad guys are turning to snitching in lieu of payment.
Snitching is the practice of asking infected users to dob in a couple of their mates who are likely to pay ransoms if infected.
The bad guys hope that, rather than collecting one ransom, they can effectively embark on pyramid ransoming. After all, why collect one Bitcoin when you can expand your victim network and collect two or more?
I guess that means if you happen to get infected there’s a way to avoid paying the ransom. But it might be ethically dubious. Although paying the ransom does mean you’re effectively funding illegal activities such as organised crime and terrorism.